matrix-docker-ansible-deploy/roles/matrix-server/templates/systemd/matrix-goofys.service.j2

[Unit]
Description=Matrix Goofys media store
After=docker.service
Requires=docker.service

[Service]
Type=simple
ExecStartPre=-/usr/bin/docker kill %n
ExecStartPre=-/usr/bin/docker rm %n
ExecStart=/usr/bin/docker run --rm --name %n \
			--log-driver=none \
			--user={{ matrix_user_uid }}:{{ matrix_user_gid }} \
			-v /etc/passwd:/etc/passwd:ro \
			-v /etc/group:/etc/group:ro \
			--security-opt apparmor:unconfined \
			--cap-add mknod \
			--cap-add sys_admin \
			--device=/dev/fuse \
			-v {{ matrix_synapse_media_store_path }}:/s3:shared \
			--env-file={{ matrix_environment_variables_data_path }}/goofys \
			--entrypoint /bin/sh \
			{{ matrix_docker_image_goofys }} \
			-c 'goofys -f --storage-class=STANDARD_IA --region {{ matrix_s3_media_store_region }} --stat-cache-ttl 60m0s --type-cache-ttl 60m0s --dir-mode 0700 --file-mode 0700 {{ matrix_s3_media_store_bucket_name }} /s3'
TimeoutStartSec=5min
ExecStop=-/usr/bin/docker stop %n
ExecStop=-/usr/bin/docker kill %n
ExecStop=-/usr/bin/docker rm %n
ExecStop=-/bin/fusermount -u {{ matrix_synapse_media_store_path }}
Restart=always
RestartSec=5

[Install]
WantedBy=multi-user.target